Abstract
This paper focuses on a survey of secure firmware update in the Internet of Things, design and description of safe and secure bootloader implementation on RFID UHF reader, encryption with AES-CCM and versioning with use of external backup flash memory device. In the case of problems with HW compatibility or other unexpected errors with new FW version, it is possible to downgrade to previous FW image, including the factory image. Authentication is provided by the UHF RFID service tag used to extract unique initialization vector of the encryption algorithm for each update session. The results show slower update speed with this new upgrade method of approximately 27% compared to older one, using the only AES-CBC algorithm.
Highlights
Concept of the Internet of Things (IoT) is very topical and popular theme as can be seen on forecasts made by Gartner research company [1]
According to ESET research suggests [6], at least 15 percent of home routers are unsecured from the estimated global number of 105 million devices and there is a huge threat of infecting malware such as Mirai. Another disturbing attack was demonstrated by researchers who managed to take control of Jeep and were able to turn off the engine remotely while driving on the highway
PC applications are modified in order to encrypt and load the FW image file onto device with authentication, Fig. 9 and Fig. 10
Summary
Concept of the Internet of Things (IoT) is very topical and popular theme as can be seen on forecasts made by Gartner research company [1]. According to ESET research suggests [6], at least 15 percent of home routers are unsecured from the estimated global number of 105 million devices and there is a huge threat of infecting malware such as Mirai Another disturbing attack was demonstrated by researchers who managed to take control of Jeep and were able to turn off the engine remotely while driving on the highway. Atmel uses the active metal shield of package to protect the chip itself, which prevents the use of side-channel attacks, and detects if someone tries it Another big company offering the made-ready solution is Texas Instrument with their Crypto-Bootloader. This design allows to securely update an FW of microprocessor directly connected to the network. It solves security of communication bus between the MCU and the crypto device by authentication, protecting
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
